CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/12/17 9:30 p.m.•3 views

EUVD-2024-55357

Anaconda3 macOS installers before 2024.06-1 contain a local privilege escalation vulnerability when installed outside the user's home directory. During installation, world-writable files are created and executed with root privileges. This allows a local low-privileged user to inject arbitrary...

7.2AI score0.00031EPSS

Exploits1References3

CNNVD•added 2025/12/17 12:0 a.m.•2 views

Anaconda3 安全漏洞

Anaconda3 is a distribution of the Python and R programming languages for scientific computing data science, machine learning applications, large-scale data processing, predictive analytics, etc. from the US-based Anaconda Inc. Dedicated to simplifying package management systems and deployment. A...

7.8CVSS6.5AI score0.00031EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2021-29924

Malicious code in bioql PyPI...

9.3CVSS8.6AI score0.05122EPSS

Exploits1References1

Prion•added 2022/05/13 12:15 p.m.•14 views

Command injection

Certain Anaconda3 2021.05 are affected by OS command injection. When a user installs Anaconda, an attacker can create a new file and write something in usercustomize.py. When the user opens the terminal or activates Anaconda, the command will be executed...

9.3CVSS8.9AI score0.05122EPSS

Exploits1References1Affected Software1

Cvelist•added 2022/05/13 11:39 a.m.•13 views

CVE-2021-42969

9.2AI score0.05122EPSS

Exploits1References1

CVE•added 2022/05/13 11:39 a.m.•74 views

CVE-2021-42969

CVE-2021-42969 affects Anaconda3 version 2021.05. Affected component: usercustomize.py; root cause: lack of filtering/restriction of operating system commands in that file. Exploitation: attacker can create a new file and write commands, which execute when the user opens a terminal or activates A...

9.3CVSS8.9AI score0.05122EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2022/05/13 12:0 a.m.•5 views

PT-2022-11758 · Anaconda3 · Anaconda3

Name of the Vulnerable Software and Affected Versions: Anaconda3 version 2021.05 Description: The issue concerns OS command injection. When a user installs Anaconda, an attacker can create a new file and write something in usercustomize.py. This allows the execution of commands when the user open...

9.3CVSS8.9AI score0.05122EPSS

Exploits1References4

CVE•added 2022/03/17 2:57 p.m.•140 views

CVE-2022-26526

CVE-2022-26526 affects Anaconda3 up to 2021.11.0.0 and Miniconda3 up to 4.11.0.0. A world-writable directory can be created under %PROGRAMDATA% and added to the system PATH when installed in a non-default configuration (for all users and PATH changes). Local users could gain privileges by placing...

7.8CVSS7.6AI score0.00135EPSS

Exploits1References4Affected Software2

Positive Technologies•added 2022/03/17 12:0 a.m.•3 views

PT-2022-17918 · Anaconda3 +1 · Anaconda3 +1

Name of the Vulnerable Software and Affected Versions: Anaconda3 versions through 2021.11.0.0 Miniconda3 versions through 4.11.0.0 Description: The issue allows local users to gain privileges by placing a Trojan horse file into a world-writable directory under %PROGRAMDATA% that is added to the...

7.8CVSS7.5AI score0.00135EPSS

Exploits1References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by